vulnerability

Dell PowerStoreOS: CVE-2023-7108: DSA-2025-117: Dell PowerStore T Security Update for Multiple Vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:P/A:N)	Mar 6, 2025	Oct 23, 2025	Mar 25, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:P/A:N)

Published

Mar 6, 2025

Added

Oct 23, 2025

Modified

Mar 25, 2026

Description

A vulnerability classified as problematic has been found in code-projects E-Commerce Website 1.0. This affects an unknown part of the file user_signup.php. The manipulation of the argument firstname with the input <video/src=x onerror=alert(document.domain)> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-249003.

Solution

dell-powerstoreos-upgrade-latest

References

CVE-2023-7108
https://attackerkb.com/topics/CVE-2023-7108
https://www.dell.com/support/kbdoc/en-us/000291612/dsa-2025-117-dell-powerstore-t-security-update-for-multiple-vulnerabilities
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-59292
CWE-79
EUVD-EUVD-2023-59292

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report